Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.
Metrics
Affected Vendors & Products
References
History
Thu, 14 Nov 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Amd
Amd ryzen Ai Software |
|
CPEs | cpe:2.3:a:amd:ryzen_ai_software:*:*:*:*:*:*:*:* | |
Vendors & Products |
Amd
Amd ryzen Ai Software |
|
Metrics |
ssvc
|
Tue, 12 Nov 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. | |
Weaknesses | CWE-20 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: AMD
Published: 2024-11-12T17:16:40.940Z
Updated: 2024-11-14T14:00:15.788Z
Reserved: 2024-01-03T16:43:30.196Z
Link: CVE-2024-21974
Vulnrichment
Updated: 2024-11-14T14:00:11.696Z
NVD
Status : Awaiting Analysis
Published: 2024-11-12T18:15:19.533
Modified: 2024-11-13T17:01:58.603
Link: CVE-2024-21974
Redhat
No data.